exploitDog

GHSA-34xv-p49x-ww37

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to obtain sensitive information via a direct request for (1) a configuration file, (2) a database dump, or (3) the Tomcat status context.

The NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to obtain sensitive information via a direct request for (1) a configuration file, (2) a database dump, or (3) the Tomcat status context.

Ссылки

EPSS

Процентиль: 71%

0.00675

Низкий

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2013-3507

nvd

больше 12 лет назад

The NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to obtain sensitive information via a direct request for (1) a configuration file, (2) a database dump, or (3) the Tomcat status context.

EPSS

Процентиль: 71%

0.00675

Низкий

CVE ID

Дефекты

CWE-200